by certifiedbug on January 8, 2009
in Microsoft
Scheduled January bulletin release day, Tuesday, Jan. 13, 2009.
The Microsoft Security Response Center (MSRC)
Preliminary information, subject to change.
As part of our regularly scheduled bulletin release, we’re currently planning to release one security bulletin:
As we do each month, the Microsoft Windows Malicious Software Removal Tool will be updated.
We are also planning to release high-priority, non-security updates on Windows Update and Windows Server Update Services (WSUS) as well as high-priority, non-security updates on Microsoft Update and Windows Server Update Services (WSUS). For additional information, please see the Other Information section of the Advanced Notification.
The January edition of the monthly security bulletin webcast will be held on Wednesday, Jan. 14, 2009 at 11 a.m., Pacific Standard Time.
Register for the webcast here: http://msevents.microsoft.com/CUI/EventDetail.aspx?EventID=1032395120&Culture=en-US
by certifiedbug on December 17, 2008
in Microsoft
The Microsoft Security Response Center (MSRC)
We’ve just published our Advance Notification for an out-of-band security bulletin release. We plan to release the security update tomorrow, Dec. 17, 2008 to address the vulnerability we’ve discussed in Microsoft Security Advisory 961051. Our target time, as always, is 10:00 a.m. Pacific Time. We’ll be holding two special webcasts to give you details and take your questions.
A reminder that this information is subject to change and that when we do release this security bulletin, we’ll let you know through the MSRC weblog.
by certifiedbug on December 4, 2008
in Microsoft
Scheduled December bulletin release day, Tuesday, Dec. 9, 2008.
The Microsoft Security Response Center (MSRC)
Preliminary information, subject to change.
As part of our regularly scheduled bulletin release, we’re currently planning to release eight security bulletins:
- Six Microsoft Security Bulletins rated as Critical and two rated as Important. These updates may require a restart and will be detectable using the Microsoft Baseline Security Analyzer.
As we do each month, the Microsoft Windows Malicious Software Removal Tool will be updated.
We are also planning to release high-priority, non-security updates on Windows Update and Windows Server Update Services (WSUS) as well as high-priority, non-security updates on Microsoft Update and Windows Server Update Services (WSUS). For additional information, please see the Other Information section of the Advanced Notification.
The December edition of the monthly security bulletin webcast will be held on Wednesday, Dec. 10, 2008 at 11 a.m., Pacific Standard Time.
Register for the webcast here: http://msevents.microsoft.com/CUI/EventDetail.aspx?EventID=1032374647&Culture=en-US
by certifiedbug on November 6, 2008
in Microsoft
Scheduled November bulletin release day, Tuesday, Nov. 11, 2008.
The Microsoft Security Response Center (MSRC)
Preliminary information, subject to change.
As part of our regularly scheduled bulletin release, we’re currently planning to release two security bulletins:
- One Microsoft Security Bulletin affecting Microsoft Windows/Microsoft Office rated as Critical, and one affecting Windows rated as Important. These updates may require a restart and will be detectable using the Microsoft Baseline Security Analyzer.
As we do each month, the Microsoft Windows Malicious Software Removal Tool will be updated.
We are also planning to release high-priority, non-security updates on Windows Update and Windows Server Update Services (WSUS) as well as high-priority, non-security updates on Microsoft Update and Windows Server Update Services (WSUS). For additional information, please see the Other Information section of the Advanced Notification.
The November edition of the monthly security bulletin webcast will be held on Wednesday, Nov. 12, 2008 at 11 a.m., Pacific Standard Time.
Register for the webcast here: http://msevents.microsoft.com/CUI/EventDetail.aspx?EventID=1032374642&Culture=en-US
by certifiedbug on October 24, 2008
in Microsoft
Vulnerability in Server Service Could Allow Remote Code Execution (958644)
Executive Summary
This security update resolves a privately reported vulnerability in the Server service. The vulnerability could allow remote code execution if an affected system received a specially crafted RPC request. On Microsoft Windows 2000, Windows XP, and Windows Server 2003 systems, an attacker could exploit this vulnerability without authentication to run arbitrary code. It is possible that this vulnerability could be used in the crafting of a wormable exploit. Firewall best practices and standard default firewall configurations can help protect network resources from attacks that originate outside the enterprise perimeter.
This security update is rated Critical for all supported editions of Microsoft Windows 2000, Windows XP, Windows Server 2003, and rated Important for all supported editions of Windows Vista and Windows Server 2008. For more information, see the subsection, Affected and Non-Affected Software, in this section.
Out-of-band update, extremely urgent to patch ASAP.
http://www.microsoft.com/technet/security/bulletin/ms08-067.mspx
Edit
Get Protected, Now!
http://blogs.technet.com/mmpc/archive/2008/10/23/get-protected-now.aspx
MS08-067 and the SDL
http://blogs.msdn.com/sdl/archive/2008/10/22/ms08-067.aspx
Note:
Threat Expert’s Blog called Gimmiv.A a worm. A worm may follow but at this stage the attack is a trojan as shown in their own reports.
Sunbelt Blog. The trojan itself isn’t a worm but a dll dropped by Gimmiv is.
by certifiedbug on September 6, 2008
in Microsoft
Scheduled September bulletin release day, Tuesday, September 9, 2008
The Microsoft Security Response Center (MSRC)
Preliminary information, subject to change.
As part of our regularly scheduled bulletin release, we’re currently planning to release:
As we do each month, the Microsoft Windows Malicious Software Removal Tool will be updated.
We are also planning to release high-priority, non-security updates on Windows Update and Windows Server Update Services (WSUS) as well as high-priority, non-security updates on Microsoft Update and Windows Server Update Services (WSUS). For additional information, please see the Other Information section of the Advanced Notification.
As always, we’ll be holding the September edition of the monthly security bulletin webcast on Wednesday, September 10, 2008 at 11 a.m., Pacific Standard Time. We will review this month’s release and take your questions live on-air with answers from our panel of experts. As a friendly reminder, if you can’t make the live webcast, you can listen to it on-demand as well at the same URL. In addition, we’ll also be posting the text of the questions and answers from each month’s webcast. You can see a full listing of the posted questions and answers on this page.
You can register for the webcast here: http://msevents.microsoft.com/CUI/EventDetail.aspx?EventID=1032374633&Culture=en-US
TechNet
by certifiedbug on August 29, 2008
in Microsoft
Deployment of the latest version of WGA Notifications for Windows XP has began, this release includes a couple of significant updates.
Based on user feedback, a return to the Windows Update install prompt as the simplest, fastest way to install and stay up-to-date.
The Team will be focusing on the product edition that is most often stolen, aka pirated, Windows XP Pro.
This release will be offered to Windows XP Pro as well as those using editions based on Pro code such as Tablet and Windows Media Center. The plan is to narrow the offering to Pro in future releases.
With this update to WGA Notifications in Windows XP, we’ve implemented a couple of related features that draw on the notifications experience we designed for Windows Vista SP1. After installing this version of WGA Notifications on a copy of Windows XP that fails the validation, most users will discover on their next logon that their desktop has changed to a plain black background from whatever was there previously
Article and screenshots:
Update to WGA Notifications for Windows XP Professional
by certifiedbug on August 11, 2008
in Microsoft
Scheduled August bulletin release day, Tuesday, August 12, 2008
The Microsoft Security Response Center (MSRC)
Preliminary information, subject to change.
As part of our regularly scheduled bulletin release, we’re currently planning to release:
- Seven Microsoft Security Bulletins with maximum severity of Critical, and five with maximum severity of Important. These updates may require a restart and will be detectable using the newly released version of the Microsoft Baseline Security Analyzer.
As we do each month, we’ll be releasing an updated version of the Microsoft Windows Malicious Software Removal Tool.
And finally, we are planning to release high-priority, non-security updates on Windows Update and Windows Server Update Services (WSUS) as well as high-priority, non-security updates on Microsoft Update and Windows Server Update Services (WSUS). You can get additional information, in the “Other Information” section of the Advanced Notification.
Also, please do register for next week’s TechNet Monthly Security Bulletin webcast. This month’s will be on Wednesday August 13, 2008 at 11 AM Pacific time. We’ll be reviewing the bulletins during the call and then taking your questions live on the air and providing answers to them from our panel of subject matter experts.
You can register for the webcast here:
http://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?EventID=1032374631&EventCategory=4&culture=en-US&CountryCode=US
TechNet
Scheduled July bulletin release day, Tuesday, July 8, 2008
The Microsoft Security Response Center (MSRC)
Preliminary information, subject to change.
- As part of our regularly scheduled bulletin release, we’re currently planning to release:Four Microsoft Security Bulletins rated as Important. These updates may require a restart and will be detectable using the Microsoft Baseline Security Analyzer.
As we do each month, the Microsoft Windows Malicious Software Removal Tool will be updated.
We are also planning to release high-priority, non-security updates on Windows Update and Windows Server Update Services (WSUS) as well as high-priority, non-security updates on Microsoft Update and Windows Server Update Services (WSUS). For additional information, please see the Other Information section of the Advanced Notification.
Finally, in late July, we’ll also be releasing KB946928 which updates the infrastructure of the Windows Update client itself. For more information on this update, please visit the Microsoft Update blog.
As always, we’ll be holding the July edition of the monthly security bulletin webcast on Wednesday, July 9, 2008 at 11 a.m., Pacific Standard Time. We will review this month’s release and take your questions live on-air with answers from our panel of experts. As a friendly reminder, if you can’t make the live webcast, you can listen to it on-demand as well. You can register for the webcast here:
http://msevents.microsoft.com/CUI/EventDetail.aspx?EventID=1032374629&Culture=en-US
TechNet
by certifiedbug on June 10, 2008
in Microsoft
Microsoft released the following security bulletins today:
- MS08-030 - Vulnerability in Bluetooth Stack Could Allow Remote Code Execution (951376) - Critical
- MS08-031 - Cumulative Security Update for Internet Explorer (950759) - Critical
- MS08-032 - Cumulative Security Update of ActiveX Kill Bits (950760) - Important
- MS08-033 - Vulnerabilities in DirectX Could Allow Remote Code Execution (951698) - Critical
- MS08-034 - Vulnerability in WINS Could Allow Elevation of Privilege (948745) - Moderate
- MS08-035 - Vulnerability in Active Directory Could Allow Denial of Service (953235) - Moderate
- MS08-036 - Vulnerabilities in Pragmatic General Multicast (PGM) Could Allow Denial of Service (950762) - Moderate
TechNet
